New Delhi: With the rapid rise in digital payments and smartphone usage, cyber fraudsters are continuously evolving new methods to target users.
A fresh and dangerous tactic, dubbed the “Lockdown Scam,” has now emerged on WhatsApp, where fake government orders, PDF files, and APK links are being circulated to deceive users and trap them in financial frauds. The most alarming aspect of this scam is that the messages are designed to closely resemble official government notifications.
Exploiting Anxiety and Remote Work Trends
According to information, following recent public discussions around a Prime Minister’s appeal and work-from-home arrangements in several states, cybercriminals have begun exploiting the situation. Users are receiving messages from unknown numbers containing files named “Emergency Lockdown Order,” “Government Advisory PDF,” and “Work From Home Notice.” In many cases, the design and formatting of these documents are so convincing that an average user mistakes them for genuine government directives.
Cyber experts say the entire operation is based on social engineering, where fear and curiosity are deliberately used to manipulate victims. Once a user clicks on such files or links, they are redirected to suspicious websites or prompted to install APK files. This is where the actual cyberattack begins.
The Psychology of Social Engineering Attacks
According to digital security and cybercrime expert and former IPS officer Triveni Singh, such scams rely heavily on psychological manipulation. He explained that cybercriminals are increasingly targeting human behavior rather than technology itself. “Fraudsters create a sense of urgency and fear, pushing users to act without thinking, which ultimately gives attackers access to their systems,” he noted.
Meanwhile, the cybersecurity research body Future Crime Research Foundation has also raised concerns over the rising number of such cases. According to its researchers, India has witnessed a sharp increase in fraud attempts involving fake digital documents disguised as government orders, disaster alerts, and administrative notices. The organization highlighted that attackers are now using AI-generated documents and cloned websites, making detection significantly more difficult.
Complete Device Hijacking and Financial Theft
Reports indicate that if a user unknowingly installs an APK file, hackers can gain full control of the device. This can lead to unauthorized access to banking applications, OTPs, passwords, photos, and personal data. In several cases, fraudsters have also been found misusing call logs and messaging data stored on victims’ phones.
Experts point out three major mistakes that make users especially vulnerable. The first is opening messages from unknown numbers without verification. The second is entering personal details on any PDF or link received via messaging apps. The third is installing APK files without understanding the source or purpose.
Cybersecurity professionals also note that scammers intentionally use government-style language, logos, and formatting to make their messages appear authentic. Terms such as “immediate action required,” “download now,” and “official order in effect” are commonly used to pressure users into acting quickly without verification.
In several instances, these messages redirect users to phishing websites where banking details and OTPs are requested. Once such sensitive information is entered, the entire bank account can be drained within minutes.
Prevention and Defensive Cybersecurity Measures
Authorities and experts strongly advise users to rely only on official government websites or verified apps for any public information. Any unsolicited file received on WhatsApp or SMS should not be downloaded or opened. Users are also advised to keep the “Unknown Sources” setting disabled on their devices to prevent unauthorized APK installations.
As digital platforms continue to expand, this scam once again highlights a critical warning: while technology brings convenience, it also damages consumer trust if caution is thrown to the wind. Even a minor mistake can lead to significant financial losses.
